CVE-2022-48833

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.0-rc5-btrfs-next-109

Description The vulnerability occurs in the btrfs file system, where space reservations for log tree extent buffers are not properly cleaned up after a transaction abort. This happens when the writeback for a log tree extent buffer fails, causing the EXTENT BUFFER UPTODATE bit to be cleared and the EXTENT BUFFER WRITE ERR bit to be set. As a result, the free log tree() function may return an -EIO error when trying to read a node or leaf, preventing the iteration over the entire tree and the update of reserved space for the extent buffer. This issue can lead to errors when unmounting the file system, including warnings and errors such as "BTRFS: error (device dm-0) in cleanup transaction:1913: errno=-5 IO failure" and "BTRFS: error (device dm-0) in free log tree:3420: errno=-5 IO failure".

Recommendations To resolve this issue, update the Linux kernel to a version newer than 5.16.0-rc5-btrfs-next-109. If an update is not available, consider temporarily disabling the btrfs file system or restricting its use to minimize the risk of exploitation. Additionally, ensure that all file systems are properly unmounted before shutting down the system to prevent data corruption.